f9fb4bf54dee5dffe98307719144465476eca371fe704abbfe08aa9d609f8d1d | Triage

Sharing

General

Target

f9fb4bf54dee5dffe98307719144465476eca371fe704abbfe08aa9d609f8d1d
Size

318KB
Sample

221123-ks3dwsch81
MD5

036085797112747b0314decdf99a9cab
SHA1

0f6bf661bbd6ff0521d40c322c6a69fa7331f01e
SHA256

f9fb4bf54dee5dffe98307719144465476eca371fe704abbfe08aa9d609f8d1d
SHA512

6ceed3cd71c5fdc61191cfac9e5e8c5d6888462f4d7db804602adff213cba7635c5fc9405a832cafa022d31330699bec14546ff1525cffe1cb652515310ff2d7
SSDEEP

6144:7r4O9uEo2S1YnQmCX492DkwNP3qpYFjidYD7idoZ05wOgKBAzv:7r4Gu6/eIo4YWlqfhKBAzv

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  f9fb4bf54dee5dffe98307719144465476eca371fe704abbfe08aa9d609f8d1d
- Size
  
  318KB
- MD5
  
  036085797112747b0314decdf99a9cab
- SHA1
  
  0f6bf661bbd6ff0521d40c322c6a69fa7331f01e
- SHA256
  
  f9fb4bf54dee5dffe98307719144465476eca371fe704abbfe08aa9d609f8d1d
- SHA512
  
  6ceed3cd71c5fdc61191cfac9e5e8c5d6888462f4d7db804602adff213cba7635c5fc9405a832cafa022d31330699bec14546ff1525cffe1cb652515310ff2d7
- SSDEEP
  
  6144:7r4O9uEo2S1YnQmCX492DkwNP3qpYFjidYD7idoZ05wOgKBAzv:7r4Gu6/eIo4YWlqfhKBAzv
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2